Skip to content
Got an urgent security questionnaire? The Security Review Sprint turns it around fast.Start a sprint
Vouchway
Security & confidentiality

We handle sensitive security materials with care.

Vouchway works with documents that should not be treated casually: SOC 2 reports, policies, architecture details, buyer questionnaires, security answers, and internal evidence.

Buyer security call

Talking points prepared

Encryption & key management
Incident response process
Subprocessor list
Evidence ready
Our commitments

How we protect customer materials.

Least-privilege access

Only the people assigned to your account should access your materials.

Separate customer workspaces

Customer materials are kept organized by account to reduce accidental mixing of information.

MFA and secure access

We use secure access controls, MFA, and approved systems for customer work.

Confidentiality by default

We can work under NDA and confidentiality obligations before reviewing sensitive materials.

No unsupported claims

We do not invent controls or make security commitments on your behalf.

Human review

AI-assisted drafting may help accelerate work, but customer-facing answers are reviewed before delivery.

Customer approval

Your team approves responses before they are submitted to buyers.

AI use

Our approach to AI-assisted work.

Vouchway may use AI-assisted workflows to parse questionnaires, match questions to prior answers, identify similar responses, and draft initial language.

We do not treat AI output as final.

Human review is required before responses are delivered, and your team remains the approver of customer-facing answers.

We do not use customer confidential materials to train public AI models.

Gap register
2 of 4 closed
Closed
Closed
In review
Open
What we need from customers

Security is shared.

To deliver accurately, we ask customers to keep us current and to stay the final approver of buyer commitments.

  • Provide complete and current materials.
  • Identify sensitive documents.
  • Approve answers before submission.
  • Tell us when controls change.
  • Avoid asking us to make claims that are not supported.
  • Route legal language to counsel.
  • Maintain ownership of final buyer commitments.

Vouchway helps you run the security-review workflow with better structure and less founder and engineering burden. It does not replace your legal counsel, compliance auditors, penetration testers, internal security ownership, or executive approval of risk commitments.

Have questions about how we handle your materials?

Tell us what you’re working with and we’ll walk you through our approach to confidentiality, access, and review integrity.

Get startedRead the FAQ